A computer forensics investigator is inspecting the firewall logs for a large financial institution that has
employees working 24 hours a day, 7 days a week.
What can the investigator infer from the screenshot seen below?
A.
A smurf attack has been attempted
B.
A denial of service has been attempted
C.
Network intrusion has occurred
D.
Buffer overflow attempt on the firewall.
Read the warning signs: Unfortunately, there is no one specific warning sign of network intrusions. Detecting a network intrusion requires a lot of little things put together; that’s the problem enterprises and security professionals face.
“Deny” firewall actions means that traffic that was explicitly denied by the firewall rules was observed.